$ rpki-client -vvf rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft File: UyQGWmE9LRB4F5xiFjcczGp3UHo.mft (raw, json) Hash identifier: FePf2Tyn/OEtU4lV/4h2qooKHe4Jt/Yw0eIt4+21U08= Subject key identifier: 1D:69:C8:AD:06:13:0D:0F:0A:2A:8D:5E:D4:1F:BE:39:AE:20:45:92 Authority key identifier: 53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A Certificate issuer: /CN=A9158EC4/serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft Manifest number: 0109 Signing time: Mon 11 Aug 2025 05:12:55 +0000 Manifest this update: Mon 11 Aug 2025 05:12:55 +0000 Manifest next update: Mon 18 Aug 2025 05:12:55 +0000 Files and hashes: 1: UyQGWmE9LRB4F5xiFjcczGp3UHo.crl (hash: XMeOPHwSRTv+M/7U3T7/Q53kD+ChDOxhmRncu4W7PFs=) 2: 2805F2D6E5B511EEB34EF35AC4F9AE02.roa (hash: 0mdd1hPCY77vgsAR82vZE3qWvhrgXofs3UYJMwrKnGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158EC4, serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Validity Not Before: Aug 11 05:12:55 2025 GMT Not After : Aug 18 05:12:55 2025 GMT Subject: CN=68997bd7-08a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:11:2b:0e:dd:4b:83:6a:1d:01:9d:cb:1f:08: 0a:49:a1:4e:01:f2:cd:1d:64:a2:f6:7c:ff:7f:c2: 15:a1:74:12:f5:11:49:a0:fe:2a:06:2e:15:d0:0b: 0e:14:75:e1:56:27:bb:4b:8e:44:14:b0:23:6f:8f: 28:67:d8:d9:be:b6:17:02:ad:14:41:cf:74:37:72: 31:09:45:ee:0b:e9:fb:e9:0a:f6:ea:a5:b4:ac:44: 9a:b4:aa:a0:c8:ee:2d:dd:50:6e:be:e1:60:6c:fe: 01:f4:a6:ed:18:03:ad:bf:cb:dd:1f:02:19:4e:4c: b2:d6:9a:bb:5d:7a:d9:fe:b2:80:8e:96:fb:ac:ce: 45:5d:54:50:7d:43:2e:a3:de:38:66:d4:27:68:f4: 47:43:9f:0f:06:ad:13:fc:95:a2:21:8a:db:87:74: 84:27:2d:aa:76:3a:5e:e2:7b:28:1c:43:00:fa:a6: cb:bc:15:5d:1e:15:4b:01:86:65:ae:11:7c:6b:84: 92:07:22:be:cf:70:cc:d8:58:6d:56:96:3b:8a:f8: 3e:f0:8b:dc:b8:95:5f:44:4c:9d:d6:68:40:53:0c: 2d:d1:a9:5d:68:5e:8a:74:6e:fb:05:4d:46:87:db: 52:59:86:c0:84:f6:bf:22:bf:59:be:a9:50:3d:80: ba:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:69:C8:AD:06:13:0D:0F:0A:2A:8D:5E:D4:1F:BE:39:AE:20:45:92 X509v3 Authority Key Identifier: keyid:53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:d4:4d:e5:32:07:ee:4c:54:22:ea:4b:5b:8c:8e:23:c6:b3: 0e:9d:f5:63:4a:c4:65:6c:11:2f:c8:0f:ef:07:28:7a:53:f0: 74:fb:c0:64:ec:4d:63:09:f3:c1:19:1e:6d:12:46:34:ba:8d: 2e:89:6e:8c:c0:36:fb:60:ac:63:b7:fc:33:34:f7:78:50:46: 35:f5:85:0d:36:37:18:37:4b:96:3b:92:f8:96:64:6b:f0:f3: 33:2d:6d:9d:39:b6:d3:8c:99:f6:a4:58:3d:04:fc:ae:6c:f3: e1:58:c2:05:23:a7:2b:61:85:a6:6d:3b:c1:76:f1:fb:73:ee: 89:cc:ee:9e:b9:4c:26:03:a2:e6:a3:e1:8a:b9:fd:f5:a6:06: 1f:d9:ee:8c:a1:12:1e:b5:ac:49:15:b2:d1:e9:7f:d1:07:53: a9:fa:21:51:63:0e:4d:fe:a1:20:38:66:ad:90:51:44:ba:32: 01:3e:76:b0:ed:f7:08:e0:4a:87:39:5c:7d:c4:0c:14:7f:2d: 4d:da:7f:63:30:e0:3f:ac:6c:89:28:2f:41:18:7b:82:01:3c: c2:53:dc:08:47:ea:a0:0c:ba:1e:bc:a0:57:14:31:3a:7c:84: a8:a5:8b:f2:7f:ac:b7:01:89:da:c0:47:d4:99:74:08:c2:31: 7d:d1:ad:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFQzQxMTAvBgNVBAUTKDUzMjQwNjVBNjEzRDJEMTA3ODE3OUM2MjE2MzcxQ0ND NkE3NzUwN0EwHhcNMjUwODExMDUxMjU1WhcNMjUwODE4MDUxMjU1WjAYMRYwFAYD VQQDEw02ODk5N2JkNy0wOGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hErDt1Lg2odAZ3LHwgKSaFOAfLNHWSi9nz/f8IVoXQS9RFJoP4qBi4V0AsO FHXhVie7S45EFLAjb48oZ9jZvrYXAq0UQc90N3IxCUXuC+n76Qr26qW0rESatKqg yO4t3VBuvuFgbP4B9KbtGAOtv8vdHwIZTkyy1pq7XXrZ/rKAjpb7rM5FXVRQfUMu o944ZtQnaPRHQ58PBq0T/JWiIYrbh3SEJy2qdjpe4nsoHEMA+qbLvBVdHhVLAYZl rhF8a4SSByK+z3DM2FhtVpY7ivg+8IvcuJVfREyd1mhAUwwt0aldaF6KdG77BU1G h9tSWYbAhPa/Ir9ZvqlQPYC6pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1pyK0G Ew0PCiqNXtQfvjmuIEWSMB8GA1UdIwQYMBaAFFMkBlphPS0QeBecYhY3HMxqd1B6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEVDNC80NTA2NDc5MEU1 QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxSQjRGNXhpRmpjY3pHcDNV SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5UUdXbUU5TFJCNEY1eGlGamNjekdwM1VIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEVDNC80NTA2NDc5MEU1QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxS QjRGNXhpRmpjY3pHcDNVSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/1E3lMgfuTFQi6ktbjI4jxrMOnfVjSsRlbBEvyA/vByh6U/B0+8Bk 7E1jCfPBGR5tEkY0uo0uiW6MwDb7YKxjt/wzNPd4UEY19YUNNjcYN0uWO5L4lmRr 8PMzLW2dObbTjJn2pFg9BPyubPPhWMIFI6crYYWmbTvBdvH7c+6JzO6euUwmA6Lm o+GKuf31pgYf2e6MoRIetaxJFbLR6X/RB1Op+iFRYw5N/qEgOGatkFFEujIBPnaw 7fcI4EqHOVx9xAwUfy1N2n9jMOA/rGyJKC9BGHuCATzCU9wIR+qgDLoevKBXFDE6 fISopYvyf6y3AYnawEfUmXQIwjF90a1x -----END CERTIFICATE-----Generated at Tue Aug 12 18:56:03 2025 by rpki-client